Privacy Policy
Last updated: March 07, 2025
Introduction
We, at Auth Consulting Limited T/A Shinka (the “Company”, “we”, “us”, “our”) respect the privacy and data protection rights of our website visitors, platform users and business contacts.
This privacy policy (the “Privacy Policy”) explains how we collect, use, and disclose information collected through each of the following contexts:
The data practices on our website https://shinka.io/ (the “Website”)
Our relationship with representatives of existing and prospective customers, partners, and vendors (the “Representatives”), and the Representatives that login to use our platform (“Platform Users”)
This Notice may be amended from time to time. We will post any change to this Notice on our Website a reasonable time in advance to the effective date of the change, and we will also make efforts to proactively notify you by email of the changes to the Notice if we have your email address.
Contact Us
If you have any questions, comments or concerns regarding this Notice or our processing of your personal information, please contact us at privacy@shinka.io
What We Collect And Why
Methods and Sources for Collecting your Personal Information
We collect the personal information from several sources:
- Directly from you as when you provide it to us through email communications, a registration form, or when you give us your business card. You are not legally obligated to provide us your personal information, but if you do not, we will not be able to handle or respond to your inquiry, maintain our business contact with you, or fulfil your request to register as a Platform User.
- If another representative of your organisation provides us with your information.
You do not have a legal duty to provide information to us. However, you will not be able to submit a request, access the Platform or be in contact with us, without providing the above information.
Sharing your Personal Information
We use third-party advertising companies to serve ads when you visit our website. These companies may use aggregated information (not including your name, address, email address or telephone number) about your visits to this and other Web sites in order to provide advertisements about goods and services of interest to you. If you would like more information about this practice and to know your choices about not having this information used by these companies, please see: http://www.networkadvertising.org/managing/opt_out.asp
We will not share your information with third parties, except in the events listed below or when you provide us with your explicit and informed consent. We do not sell your personal information to third parties.
Data Retention and Security
We retain your information for the duration we need it to operate the Website, the Platform and our business, and interact with customers, partners and suppliers, and thereafter as needed for record-keeping purposes.
- We will retain your information for the duration needed to support our ordinary business activities operating the Website, the Platform and interacting with existing and potential customers, suppliers and partners. Thereafter, we will still retain your personal information as necessary to comply with our legal obligations, resolve disputes, establish and defend legal claims and enforce our agreements. The overall period of retention is approximately 3 years.
We implement measures to secure your information.
- We implement measures to reduce the risks of damage, loss of information and unauthorised access or use of information. However, these measures do not provide absolute information security. Therefore, although efforts are made to secure your personal information, there is no guarantee that it will be immune from information security risks.
Additional Information for Individuals in the EU or UK
Controller and GDPR representative.
International Data Transfers
To facilitate processing your information within the companies in our corporate group and by our service providers, we will transfer your information to countries such as the United Arab Emirates, Ireland and the United States. We do so under the terms of a data transfer agreement which contain standard data protection contract clauses with adequate safeguards determined by the EU Commission.
If you have any questions, comments or concerns regarding this Notice or our processing of your personal information, please contact us at privacy@shinka.io
Legal Basis for Processing Your Personal Data
Data Subject Rights
If you are in the EU or the UK, you have the following rights under the GDPR:
- Right to Access and receive a copy of your personal information that we process.
- Right to Rectify inaccurate personal information we have concerning you and to have incomplete personal information completed.
- Right to Data Portability, that is, to receive the personal information that you provided to us, in a structured, commonly used, and machine-readable format. You have the right to transmit this data to another person or entity. Where technically feasible, you have the right to have your personal information transmitted directly from us to the person or entity you designate.
- Right to Object to our processing of your personal information based on our legitimate interest. However, we may override the objection if we demonstrate compelling legitimate grounds, or if we need to process such as personal information for the establishment, exercise, or defence of legal claims
- Right to Restrict us from processing your personal information (except for storing it):
- if you contest the accuracy of the personal information (in which case the restriction applies only for a period enabling us to determine the accuracy of the personal information);
- if the processing is unlawful and you prefer to restrict the processing of the personal information rather than requiring the deletion of such data by us;
- if we no longer need the personal information for the purposes outlined in this Notice, but you require the personal information to establish, exercise or defend legal claims; or
- if you object to our processing based on our legitimate interest (in which case the restriction applies only for the period enabling us to determine whether our legitimate grounds for processing override yours).
- Right to be Forgotten - Under certain circumstances, such as when you object to our processing of your personal information based on our legitimate interest and there are no overriding legitimate grounds for the processing, you have the right to ask us to erase your personal information. However, notwithstanding such request, we may still process your personal information if it is necessary to comply with our legal obligations, or for the establishment, exercise, or defence of legal claims. If you wish to exercise any of these rights, please contact us through the channels listed in this Notice.
- If another representative of your organisation provides us with your information
When you contact us, we reserve the right to ask for reasonable evidence to verify your identity before we provide you with information. Where we are not able to provide you with information that you have asked for, we will explain the reason.
Subject to applicable law, you have the right to lodge a complaint with your local data protection authority. If you are in the EU, then according to Article 77 of the GDPR, you can lodge a complaint to the supervisory authority, in the Member State of your residence, place of work or place of alleged infringement of the GDPR. For a list of supervisory authorities in the EU, click here (Link to hosted GDPR)
If you are in the UK, you can lodge a complaint to the Information Commissioner’s Office (ICO) pursuant to the instructions provided here.